Published: 30/03/2015 Updated: 07/11/2023

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP prior to 5.5.22 and 5.6.x prior to 5.6.6 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted renaming of a Phar archive to the name of an existing file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
canonical ubuntu linux 12.04
debian debian linux 7.0
canonical ubuntu linux 14.10
canonical ubuntu linux 14.04
canonical ubuntu linux 10.04
opensuse opensuse 13.1
opensuse opensuse 13.2
php php
apple mac os x
redhat enterprise linux desktop 7.0
redhat enterprise linux workstation 7.0
redhat enterprise linux server 7.0
redhat enterprise linux hpc node 7.0
redhat enterprise linux server eus 7.1
redhat enterprise linux hpc node eus 7.1

Debian Bug report logs - #780713 php5: CVE-2015-2331 Package: src:php5; Maintainer for src:php5 is Debian PHP Maintainers <pkg-php-maint@listsaliothdebianorg>; Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Wed, 18 Mar 2015 09:24:07 UTC Severity: grave Tags: security Found in versions php5/566+dfsg-1, p ...

Several security issues were fixed in PHP ...

Multiple vulnerabilities have been discovered in the PHP language: CVE-2015-2301 Use-after-free in the phar extension CVE-2015-2331 Emmanuel Law discovered an integer overflow in the processing of ZIP archives, resulting in denial of service or potentially the execution of arbitrary code For the stable distribution (wheezy), the ...

A buffer overflow vulnerability was found in PHP's phar (PHP Archive) implementation See <a href="bugsphpnet/bugphp?id=69324">bugsphpnet/bugphp?id=69324</a> for more details (CVE-2015-2783) A use-after-free flaw was found in PHP's phar (PHP Archive) paths implementation A malicious script author could possibly ...

A use-after-free flaw was found in PHP's phar (PHP Archive) paths implementation A malicious script author could possibly use this flaw to disclose certain portions of server memory ...

CWE-416 https://bugs.php.net/bug.php?id=68901 http://openwall.com/lists/oss-security/2015/03/15/6 https://bugzilla.redhat.com/show_bug.cgi?id=1194747 http://php.net/ChangeLog-5.php http://www.debian.org/security/2015/dsa-3198 http://www.ubuntu.com/usn/USN-2535-1 http://lists.opensuse.org/opensuse-updates/2015-04/msg00002.html http://www.mandriva.com/security/advisories?name=MDVSA-2015:079 http://www.securitytracker.com/id/1031949 https://support.apple.com/HT205267 http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html http://rhn.redhat.com/errata/RHSA-2015-1135.html http://marc.info/?l=bugtraq&m=143403519711434&w=2 http://marc.info/?l=bugtraq&m=143748090628601&w=2 http://marc.info/?l=bugtraq&m=144050155601375&w=2 http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html http://www.securityfocus.com/bid/73037 https://security.gentoo.org/glsa/201606-10 http://rhn.redhat.com/errata/RHSA-2015-1066.html http://rhn.redhat.com/errata/RHSA-2015-1053.html http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00005.html http://rhn.redhat.com/errata/RHSA-2015-1218.html http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=b2cf3f064b8f5efef89bb084521b61318c71781b https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=780713 https://usn.ubuntu.com/2535-1/https://nvd.nist.gov https://access.redhat.com/security/cve/cve-2015-2301

CVE-2015-2301

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect